[SEARCH-LAB advisory] AVTECH IP Camera, NVR, DVR multiple vulnerabilities

2016-10-11 Thread Gergely Eberhardt
the overall code quality, the devices should contain much more problems. Credits --- This vulnerability was discovered and researched by Gergely Eberhardt (@ebux25) from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] https://www.search-lab.hu/advisories/126-avtech-devices-multiple

[SEARCH-LAB advisory] UPC Hungary network problems

2016-07-20 Thread Gergely Eberhardt
ity was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] http://www.search-lab.hu/advisories/secadv-20150720

[SEARCH-LAB advisory] Technicolor TC7200 modem/router multiple vulnerabilities

2016-07-20 Thread Gergely Eberhardt
--- This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] http://www.search-lab.hu/advisories/secadv-20150720 [2] https://github.com/ebux/Cable-modems/tree/master/Technicolor

[SEARCH-LAB advisory] Compal CH7465LG-LC modem/router multiple vulnerabilities

2016-07-20 Thread Gergely Eberhardt
the fix will be ready. Credits --- This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] http://www.search-lab.hu/advisories/secadv-20150720 [2] http://www.search-lab.hu/media/Compal_CH7465LG_Evaluation_Report_1.1.pdf

[SEARCH-LAB advisory] Hitron CGNV4 modem/router multiple vulnerabilities

2016-07-20 Thread Gergely Eberhardt
install the ISP after the fix will be ready. Credits --- This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] http://www.search-lab.hu/advisories/secadv-20150720

[SEARCH-LAB advisory] Cisco EPC3925 UPC modem/router default passphrase vulnerabilities

2016-07-20 Thread Gergely Eberhardt
and passphrase generation [2]. Recommendations --- Since only the ISP can update the firmware, we can recommend for users to change the WiFi passphrase. Credits --- This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References [1

[SEARCH-LAB advisory] LG NAS N1A1 multiple vulnerabilities in Familycast

2016-05-19 Thread Gergely Eberhardt
its --- This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [1] http://www.search-lab.hu/advisories/113-secadv-20160519 [2] https://youtu.be/ppMOj-eK81Y [3] https://github.com/ebux/LG-NAS-N1A1-vulnerabilities

[SEARCH-LAB advisory] More than fifty vulnerabilities in D-Link NAS and NVR devices

2015-05-28 Thread Gergely Eberhardt
of the DNS and DNR devices to the internet. Since the devices use the UPnP feature, you should disable it in the router. Credits --- These vulnerabilities were discovered and researched by Gergely Eberhardt (@ebux25) from SEARCH-LAB Ltd. (www.search-lab.hu) References -- [SL-ADV] Security

PuTTY SSH handshake heap overflow

2013-08-05 Thread Gergely Eberhardt
9896 or later. The potential code execution vulnerability has been addressed in WinSCP 5.1.6 [3]. Credits: This vulnerability was discovered and researched by Gergely Eberhardt from SEARCH-LAB Ltd. (www.search-lab.hu) References: [1] http://www.search-lab.hu/advisories/secadv-20130722 [2] http